Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE 2024:4019-1 important: Client Tools Security Updates

suse
Calendar Grey November 18, 2024
Dist Suse Esm H88
SUSE Manager Client Tools gets crucial updates for security enhancements and improved functionality with various fixes.
* bsc#1213933 * bsc#1223142 * bsc#1226759 * bsc#1227341 * bsc#1227578

Summary

## This update fixes the following issues: golang-github-lusitaniae-apache_exporter was updated from version 1.0.1 to 1.0.8: * Security issues fixed: * CVE-2023-3978: Fixed security bug in x/net dependency in version 1.0.2 (bsc#1213933) * Bugs fixed: * Require Go 1.20 when building for RedHat derivatives * Version 1.0.8 (bsc#1227341): * Update prometheus/client_golang to version 1.19.1 * Update x/net to version 0.23.0 * Version 1.0.7: * Update protobuf to version 1.33.0 * Update prometheus/client_golang to version 1.19.0 * Update prometheus/common to version 0.46.0 * Standardize landing page * Version 1.0.6: * Update prometheus/exporter-toolkit to version 0.11.0 * Update prometheus/client_golang to version 1.18.0 * Added User-Agent header * Version 1.0.4: * Update x/crypto to version 0.17.0

Topics%20covered

Topics Covered

security advisory security update important threat mitigation SUSE security issues client tools

References

* bsc#1213933

* bsc#1223142

* bsc#1226759

* bsc#1227341

* bsc#1227578

* bsc#1227606

* bsc#1228424

* bsc#1228685

* bsc#1229108

* bsc#1229432

* bsc#1229437

* bsc#1229501

* bsc#1230136

* bsc#1230139

* bsc#1230285

* bsc#1230288

* bsc#1230745

* bsc#1231157

* bsc#1231206

* jsc#ECO-3319

* jsc#MSQA-863

Cross-

* CVE-2023-3978

CVSS scores:

* CVE-2023-3978 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

* CVE-2023-3978 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products:

* SUSE Manager Client Tools for RHEL, Liberty and Clones 9

An update that solves one vulnerability, contains two features and has 18

security fixes can now be installed.

##

* https://www.suse.com/security/cve/CVE-2023-3978.html

* https://bugzilla.suse.com/show_bug.cgi?id=1213933

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:4019-1
Release Date: 2024-11-18T13:24:46Z
Rating: important

Topics%20covered

Topics Covered

security advisory security update important threat mitigation SUSE security issues client tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here